This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @equinor/eds-core-react from 0.27.0 to 0.35.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **26 versions** ahead of your current version.
- The recommended version was released **2 months ago**, on 2023-12-21.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Missing Release of Resource after Effective Lifetime [SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **141/1000** **Why?** Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Local, EPSS: 0.01055, Social Trends: No, Days since published: 69, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.35, Score Version: V5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: @equinor/eds-core-react
🐛 Typography: Bug affecting users of styled-components v6 where line-clamping would be applied to all Typography elements on the page if the lines prop was set on one of them by @ oddvernes in #3193
✨ Icon: Added support for multiple paths (type IconData.svgPathData is now string | Array<string>) by @ oddvernes in #3177
Fixed
🐛 Autocomplete: Fixed scrollbar clipping issue that manifested in Firefox by @ oddvernes in #3179
🐛 Slider: Fixed a bug where label tooltip was always visible for users with styled-components@5.x.x by @ oddvernes in #3173
Changed
🧑💻 SideSheet: open prop type changed to required, conditionally render title and close button to reflect the optional types of title and onClose props by @ oddvernes in #3161
🐛Chip: only hover color when clickable (fixed for error variant) by @ oddvernes in #3096
🐛 Table.Row: fix Styled-components v6 printing a false positive console warning about active prop by @ oddvernes in #3104
🐛 Slider: change returnvalue type for onChange and onChangeCommitted from number[] | number to number[] to reflect reality. And allow value for non-range slider to be number[] (an array with only one number) by @ oddvernes in #3076
from @equinor/eds-core-react GitHub release notes
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e?utm_source=github&utm_medium=referral&page=upgrade-pr)
🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr)
🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e/settings/integration?pkg=@equinor/eds-core-react&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @equinor/eds-core-react from 0.27.0 to 0.35.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **26 versions** ahead of your current version. - The recommended version was released **2 months ago**, on 2023-12-21. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Missing Release of Resource after Effective Lifetime
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **141/1000**
**Why?** Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Local, EPSS: 0.01055, Social Trends: No, Days since published: 69, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.35, Score Version: V5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: @equinor/eds-core-react
[0.35.1] - 2023-12-21
Fixed
Typography
: Bug affecting users of styled-components v6 where line-clamping would be applied to allTypography
elements on the page if thelines
prop was set on one of them by @ oddvernes in #3193[0.35.0] - 2023-12-13
Added
Icon
: Added support for multiple paths (typeIconData.svgPathData
is nowstring | Array<string>
) by @ oddvernes in #3177Fixed
Autocomplete
: Fixed scrollbar clipping issue that manifested in Firefox by @ oddvernes in #3179Slider
: Fixed a bug where label tooltip was always visible for users withstyled-components@5.x.x
by @ oddvernes in #3173Changed
SideSheet
:open
prop type changed to required, conditionally render title and close button to reflect the optional types oftitle
andonClose
props by @ oddvernes in #3161Full Changelog: https://github.com/equinor/design-system/compare/eds-core-react@0.34.0...eds-core-react@0.35.0
[0.34.0] - 2023-11-17
Added
Slider
: addedhideActiveTrack
prop by @ oddvernes in #3131Slider
: addedlabelAlwaysOn
prop by @ oddvernes in #3143Autocomplete
: Addedvariant
(error
,warning
,success
) andhelperText
props by @ denektenina in #3139Breadcrumbs
: customseparator
prop by @ oddvernes in #3142Changed
Slider
: redesigned value label to tooltip style, increased font size by @ oddvernes in #3143Label
/TextField
/Autocomplete
: Thelabel
prop type changed fromstring
toReactNode
to allow it to be more customizable by @ FredrikMWold in #3140Fixed
Slider
: added touch support for range slider by @ oddvernes in #3144Slider
: fixed bug in Safari where slider would grow in width on mouseover by @ oddvernes in #3145[0.33.1] - 2023-10-20
Fixed
Chip
: only hover color when clickable (fixed for error variant) by @ oddvernes in #3096Table.Row
: fix Styled-components v6 printing a false positive console warning aboutactive
prop by @ oddvernes in #3104Slider
: change returnvalue type foronChange
andonChangeCommitted
fromnumber[] | number
tonumber[]
to reflect reality. And allow value for non-range slider to be number[] (an array with only one number) by @ oddvernes in #3076@ babel/runtime
to fix a vulnerability in its dependency@ babel/traverse
(https://nvd.nist.gov/vuln/detail/CVE-2023-45133) by @ oddvernes in #3115Full Changelog: https://github.com/equinor/design-system/compare/eds-core-react@0.33.0...eds-core-react@0.33.1
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/project-portal-agk/project/6349c3df-ad07-48e8-87ec-8172c2aba36e/settings/integration?pkg=@equinor/eds-core-react&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)